Out of the box, the UserInfo channel allows the user to edit and maintain their Membership password (change their own password). To change the user’s authentication module to only LDAP, the administrator has to customize the UserInfoProvider to acknowledge LDAP authenticated users.
 To Enable End User Password Maintenance for LDAP Authentication
To Enable End User Password Maintenance for LDAP AuthenticationCreate an LDAP passwordHandler template. The template name format is passwordHandler-authType.template.
You can copy an existing template in the Userinfo template directory. For example,
| cd PortalServer-DataDir/portals/portal-ID/desktop/default/UserInfo/html cp passwordHandler-Membership.template passwordHandler-LDAP.template | 
Optionally, modify the descriptive text within passwordHandler-authType.template.
For example, in the passwordHandler-LDAP.template file, change the Membership to LDAP.
Add the authentication module name to the channel’s authTypes display profile Collection.
Use the psadmin utility subcommand to add the entry to the UserInfoProvider <Provider> element. For example:
Add the entry LDAP to the authTypes collection for the UserInfoProvider as shown (in bold) below:
| <Collection name="authTypes" advanced="true"> <String value="Membership"/> <String value="LDAP"/> </Collection> | 
Here, based on the user’s SSOToken authentication type, the appropriate authType will be used.
Import the modified display profile document using the psadmin modify-display-profile subcommand.
Restart the web container.
Access the portal desktop as an LDAP authenticated user and edit the user info channel.
Verify that the password field is displayed.
Modify the user’s password and select finished
Logout and login to the Desktop with the new credentials.